Ed Greshko wrote:
What's the point of having the key at all if you implicitly trust the
delivery mechanism of the RPM packages?
Good approach, answer a question with another question.
If you can't say why you need the key in the first place, there isn't
much hope of seeing why you need a different reason to trust the key
than the content it verifies.
--
Les Mikesell
[EMAIL PROTECTED]
--
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines
